TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 95f869c9fb97ff641de68b0ce4ff9b51a709f78f / library / rsa.c
  1. 718972e Fix mutex leak in RSA by Gilles Peskine · 4 years, 6 months ago
  2. b9fce3c Fix mutex double-free in RSA by Gilles Peskine · 4 years, 6 months ago
  3. 3b7523e Fix an incorrect error code if RSA private operation glitched by Gilles Peskine · 4 years, 8 months ago
  4. b2aeb75 Restore retry in rsa_prepare_blinding() by Peter Kolbus · 4 years, 10 months ago
  5. f0b469e Merge branch 'mbedtls-2.16' into mbedtls-2.16-restricted by Manuel Pégourié-Gonnard · 5 years ago
  6. a2947ac Update copyright notices to use Linux Foundation guidance by Bence Szépkúti · 5 years ago
  7. 3fa7c64 Use arc4random_buf instead of rand on NetBSD by gufe44 · 5 years ago
  8. 87a602d Clarify some comments by Manuel Pégourié-Gonnard · 5 years ago
  9. cadcf4c Fix memory leak on error path by Manuel Pégourié-Gonnard · 5 years ago
  10. 49e94e3 RSA: blind call to mpi_inv_mod() on secret value by Manuel Pégourié-Gonnard · 5 years ago
  11. 86ad5be RSA: remove redundant GCD call in prepare_blinding() by Manuel Pégourié-Gonnard · 5 years ago
  12. f744bd7 Update license headers to Apache-2.0 OR GPL-2.0-or-later by Bence Szépkúti · 5 years ago
  13. b10fd06 Parse RSA parameters DP, DQ and QP from PKCS1 private keys by Jack Lloyd · 6 years ago
  14. b6cdf98 Merge remote-tracking branch 'public/pr/1721' into development-restricted by Simon Butcher · 7 years ago
  15. 2f660d0 Forbid passing NULL input buffers to RSA encryption routines by Hanno Becker · 7 years ago
  16. b86e684 Move/remove param validation in mbedtls_rsa_rsaes_pkcs1_v15_encrypt by Hanno Becker · 7 years ago
  17. ddeeed7 Implement parameter validation for RSA module by Hanno Becker · 7 years ago
  18. 658618b Merge remote-tracking branch 'restricted/pr/516' into development by Simon Butcher · 7 years ago
  19. cdd1a6c Merge remote-tracking branch 'restricted/pr/510' into development-restricted-proposed by Simon Butcher · 7 years ago
  20. 4899247 Fix undefined behavior in unsigned-to-signed conversion by Gilles Peskine · 7 years ago
  21. 9b43070 Fix likely-harmless undefined behavior surrounding volatile by Gilles Peskine · 7 years ago
  22. b8fc1b0 RSA: Use MBEDTLS_MPI_GEN_PRIME_FLAG_LOW_ERR by Janos Follath · 7 years ago
  23. ec2a5fd PKCS#1 v1.5 decoding: fix empty payload case by Gilles Peskine · 7 years ago
  24. 40b57f4 Remove a remaining sensitive memory access in PKCS#1 v1.5 decryption by Gilles Peskine · 7 years ago
  25. 85a7442 mbedtls_rsa_rsaes_pkcs1_v15_decrypt: remove the variable p by Gilles Peskine · 7 years ago
  26. eeedabe Minor optimization in the PKCS#1v1.5 unpadding step by Gilles Peskine · 7 years ago
  27. 8c9440a Use branch-free size comparison for the padding size by Gilles Peskine · 7 years ago
  28. a1af5c8 Bleichenbacher fix: don't leak the plaintext length (step 2) by Gilles Peskine · 7 years ago
  29. 9265ff4 Bleichenbacher fix: don't leak the plaintext length (step 1) by Gilles Peskine · 7 years ago
  30. 331d80e Evolve choose_int_from_mask to if_int by Gilles Peskine · 7 years ago
  31. e2a10de Fix a timing-based Bleichenbacher attack on PKCS#1v1.5 decryption by Gilles Peskine · 7 years ago
  32. 5908dd4 Minor readability improvement by Gilles Peskine · 7 years ago
  33. 3725bb2 rsa: pss: Enable use of big hashes with small keys by Jaeden Amero · 7 years ago
  34. ff21572 rsa: pss: Use size_t when computing signatures by Jaeden Amero · 7 years ago
  35. 2239a86 Clear pk context and other minor changes in *_free() procedures by irwir · 7 years ago
  36. a331e0f Merge remote-tracking branch 'upstream-restricted/pr/421' into development-proposed by Jaeden Amero · 7 years ago
  37. 1f6301b Rename mbedtls_zeroize to mbedtls_platform_zeroize by Andres Amaya Garcia · 7 years ago
  38. e32df08 Remove individual copies of mbedtls_zeroize() by Andres Amaya Garcia · 8 years ago
  39. c645bfe Generate RSA keys according to FIPS 186-4 by Jethro Beekman · 7 years ago
  40. 97f95c9 Avoid small private exponents during RSA key generation by Jethro Beekman · 7 years ago
  41. 15ad579 Merge tag 'mbedtls-2.8.0' into iotssl-1381-x509-verify-refactor-restricted by Gilles Peskine · 7 years ago
  42. 1ba8a3f Yet another dependency issue (PKCS1_V15) by Manuel Pégourié-Gonnard · 7 years ago
  43. a3389eb Merge branch 'development-restricted' into iotssl-1306-rsa-is-vulnerable-to-bellcore-glitch-attack by Hanno Becker · 7 years ago
  44. 66954e1 Merge branch 'development' into development-restricted by Jaeden Amero · 8 years ago
  45. 9e4f77c New MD API: rename functions from _ext to _ret by Gilles Peskine · 8 years ago
  46. d91f2a2 Merge branch 'development' into iotssl-1251-2.7 by Gilles Peskine · 8 years ago
  47. d40c22b Merge branch 'development' into development-restricted by Gilles Peskine · 8 years ago
  48. 87ae197 Add explicit uint truncation casts by Hanno Becker · 8 years ago
  49. 71b0060 Merge branch 'development' into iotssl-247 by Hanno Becker · 8 years ago
  50. 31f3f0b Merge branch 'development' into development-restricted by Jaeden Amero · 8 years ago
  51. d4d6057 Address issues found by coverity by Hanno Becker · 8 years ago
  52. f342cb7 Merge branch 'development' into development-restricted by Jaeden Amero · 8 years ago
  53. 3a760a1 Add size check for RSA modulus to `mbedtls_rsa_complete` by Hanno Becker · 8 years ago
  54. 63073aa Don't require P,Q in rsa_private in case of non-blinded non-CRT by Hanno Becker · 8 years ago
  55. 91048a3 RSA PSS: remove redundant check; changelog by Gilles Peskine · 8 years ago
  56. b00b0da RSA PSS: fix first byte check for keys of size 8N+1 by Gilles Peskine · 8 years ago
  57. 139108a RSA PSS: fix minimum length check for keys of size 8N+1 by Gilles Peskine · 8 years ago
  58. 6a54b02 RSA: Fix another buffer overflow in PSS signature verification by Gilles Peskine · 8 years ago
  59. 28a0c72 RSA: Fix buffer overflow in PSS signature verification by Gilles Peskine · 8 years ago
  60. f8c028a Minor corrections by Hanno Becker · 8 years ago
  61. c36aab6 Swap D,E parameters in mbedtls_rsa_deduce_primes by Hanno Becker · 8 years ago
  62. ebd2c02 Don't require P,Q in `rsa_private` if neither CRT nor blinding used by Hanno Becker · 8 years ago
  63. b82a5b5 Fix typos and mixup related to RSA_NO_CRT by Hanno Becker · 8 years ago
  64. a565f54 Introduce new files rsa_internal.[ch] for RSA helper functions by Hanno Becker · 8 years ago
  65. 705fc68 Unify sanity checks for RSA private and public keys by Hanno Becker · 8 years ago
  66. e867489 Remove outdated comments from `mbedtls_rsa_complete` by Hanno Becker · 8 years ago
  67. 7f25f85 Adapt uses of `mbedtls_rsa_complete` to removed PRNG argument by Hanno Becker · 8 years ago
  68. f9e184b Remove PRNG argument from `mbedtls_rsa_complete` by Hanno Becker · 8 years ago
  69. 68b4d58 Remove PRNG argument from `mbedtls_rsa_deduce_moduli` by Hanno Becker · 8 years ago
  70. 0f65e0c Rename `rsa_deduce_moduli` to `rsa_deduce_primes` by Hanno Becker · 8 years ago
  71. 8ba6ce4 Rename `rsa_deduce_private` to `rsa_deduce_private_exponent` by Hanno Becker · 8 years ago
  72. 45a0ef3 Correct memory leak in `mbedtls_rsa_validate_crt` by Hanno Becker · 8 years ago
  73. e58d38c Minor improvements by Hanno Becker · 8 years ago
  74. 2b2f898 Streamline code-path in rsa_rsassa_pkcs1_v15_encode by Hanno Becker · 8 years ago
  75. 64a8c0a Verify PKCS1 v1.5 signature without parsing by Hanno Becker · 8 years ago
  76. fdf3803 Outsource code for generating PKCS1 v1.5 encoding by Hanno Becker · 8 years ago
  77. 171a8f1 Move constant time memcmp for signature verification by Hanno Becker · 8 years ago
  78. 2dec5e8 Correct outdated comment by Hanno Becker · 8 years ago
  79. 4e1be39 Remove FORCE_VERIFICATION and FORCE_BLINDING by Hanno Becker · 8 years ago
  80. b5beaa8 Check that 1 < D, E < N in `mbedtls_rsa_validate_params` by Hanno Becker · 8 years ago
  81. c6fc878 Remove `mbedtls_rsa_check_crt` by Hanno Becker · 8 years ago
  82. 98838b0 Minor improvements by Hanno Becker · 8 years ago
  83. 7471631 Make input arguments to `mbedtls_rsa_import_raw` constant by Hanno Becker · 8 years ago
  84. bdefff1 Change signature of `mbedtls_rsa_deduce_private` by Hanno Becker · 8 years ago
  85. ba5b755 Change signature and semantics of `mbedtls_rsa_deduce_moduli` by Hanno Becker · 8 years ago
  86. 56bae95 Improve style and documentation, fix typo by Hanno Becker · 8 years ago
  87. 2fdffe0 Check exactly for the RSA context fields required in rsa_private by Hanno Becker · 8 years ago
  88. bead717 Correct typo in rsa.c by Hanno Becker · 8 years ago
  89. ba1ba11 Check that length is properly set in `mbedtls_rsa_check_pubkey` by Hanno Becker · 8 years ago
  90. 2f8f06a Don't always recompute context length in mbedtls_rsa_get_len by Hanno Becker · 8 years ago
  91. 2cca6f3 Always deduce N from P, Q in mbedtls_rsa_complete by Hanno Becker · 8 years ago
  92. 2c9f027 Don't require P,Q if CRT is not used by Hanno Becker · 8 years ago
  93. 45037ce Add check for presence of relevant parameters in mbedtls_rsa_private by Hanno Becker · 8 years ago
  94. a988a27 Emit deprecation warning if MBEDTLS_RSA_FORCE_BLINDING is not set by Hanno Becker · 8 years ago
  95. cc209ca Remove signature verification from rsa_rsassa_pkcs1_v15_sign by Hanno Becker · 8 years ago
  96. 43f9472 Add quick-check for presence of relevant parameters in rsa_private by Hanno Becker · 8 years ago
  97. c6075cc Don't use CRT for signature verification by Hanno Becker · 8 years ago
  98. b269a85 Change mbedtls_rsa_check_privkey to use new helper functions by Hanno Becker · 8 years ago
  99. d9431a7 Minor comments improvement by Hanno Becker · 8 years ago
  100. d363799 Add mbedtls_rsa_validate_crt by Hanno Becker · 8 years ago